VirtualHealth
Vision. Tech. Care. HELIOS® is the only care management platform purpose-built for value-based care across populations.
Healthcare IT • Population Health Management • ACA • Emerging Managed Care • Managed Care
51 - 200
Senior Security Operations Engineer (with Cloud focus)
August 22
🏡 Remote – New York
VirtualHealth
Vision. Tech. Care. HELIOS® is the only care management platform purpose-built for value-based care across populations.
Healthcare IT • Population Health Management • ACA • Emerging Managed Care • Managed Care
51 - 200
Description
• Oversee the entire SecOps and Cloud Security Operations and be the subject matter expert in relevant verticals • Conduct threat modeling and risk assessment exercises with DevOps team • Contribute to the IAM and IT teams at VirtualHealth • Perform regular security assessments of Virtual Health cloud platforms and software • Configure systems to comply with industry best practices and hardening standards • Monitor remediation of vulnerabilities utilizing third-party tools such as Veracode and Orca • Assist the security team in expanding cybersecurity awareness across the organization through a security review and training sessions with internal staff • Document security standards and guidelines pertaining to secure cloud management, configuration, and deployment • Evaluate new technologies, tools, and development techniques that impact security • Build and maintain security partnership with DevOps and Development leads to remediate vulnerabilities and drive SDLC process improvements
Requirements
• 3-5+ years experience in a security technical role • Comfortable with DevOps-style tools like Ansible, Chef, Terraform, GitHub, Jenkins, Puppet, etc. • Solid understanding of AWS architecture with secure coding practices and automating security checks in pipelines • Understands the principle of least privilege and the confidentiality, integrity, and availability triad and will work to enforce those concepts in our environment • Experience with languages such as Python, Javascript, Java, Node.js • Understanding of compliance obligations including HITRUST and FedRamp • Demonstrable knowledge of security concepts and common vulnerabilities like the OWASP Top 10 • Strong understanding of virtual machines, containerization, and cloud architecture • Proven experience with web application and infrastructure penetration testing • Ability to multitask and prioritize work effectively • Attention to detail • Ability to work independently and as part of a team • Bonus: Certificates such as AWS Security Specialty, OSCP, ECH
Benefits
• Competitive salary • Unlimited PTO • Health, dental, and vision insurance • 401(k) Participation • Rapidly growing technology company with upside potential • Work from home within United States
Apply Now
